Package "systemd-resolved"

  systemd (257.4-1ubuntu3.2) plucky; urgency=medium

  [ Ural Tunaboyu ]
  * analyze: don't connect to the private bus on test runs (LP: #2111107):
    - analyze: don't connect to bus from analyze test run
    - pid1: don't connect to oomd in test runs
    - manager: explicitly create our private runtime directory

  [ Mario Limonciello ]
  * Drop support for using actual brightness (LP: #2110585)

  [ Chengen Du ]
  * network/dhcp6: consider the DHCPv6 protocol as finished when conflict addresses exist
    (LP: #2115418)

 -- Ural Tunaboyu <email address hidden> Tue, 29 Jul 2025 09:20:02 -0400

  systemd (257.4-1ubuntu3.1) plucky-security; urgency=medium

  * SECURITY UPDATE: race condition in systemd-coredump
    - debian/patches/CVE_2025_4598_1.patch: coredump: get rid of
      _META_MANDATORY_MAX.
    - debian/patches/CVE_2025_4598_2.patch: coredump: use %d in kernel core
      pattern.
    - debian/patches/CVE_2025_4598_3.patch: coredump: also stop forwarding
      non-dumpable processes.
    - debian/patches/CVE_2025_4598_4.patch: coredump: get rid of a bogus
      assertion.
    - debian/patches/CVE_2025_4598_5.patch: coredump: add support for new %F
      PIDFD specifier.
    - debian/patches/CVE_2025_4598_6.patch: coredump: when %F/pidfd is used,
      again allow forwarding to containers.
    - CVE-2025-4598

 -- Octavio Galland <email address hidden> Wed, 04 Jun 2025 10:00:26 -0300